menu

BREAKDOWN: Magento 2 PHP Skimmer - $dataoo

2021-01-21 :: Luke
#$dataoo  #onfr64_qrpbqr  #testServer.php  #bardven[.]com  #breakdown  #skimmer  #magento  #ecommerce  #PHP  #website malware  BREAKDOWN: Magento 2 PHP Skimmer - $dataoo
A breakdown of a PHP skimmer found across multiple websites and injected into the Magento core file app/bootstrap.php.
Read more →

Spox is Dila Belimi

2021-01-02 :: Luke
#Spox  #Dila Belimi  #threat actor  #phishing  #attribution  #opsec  #fraud  #PHP  #website malware  Spox is Dila Belimi
Hi my name is Spox (Dila Belimi) and I like to steal from average people during a global pandemic.
Read more →

Phishers Target Vonage/Nexmo API

2020-12-28 :: Luke
#metri  #PHP  #phishing  #fraud  #website malware  Phishers Target Vonage/Nexmo API
A phishing kit targeting both the login information and also the API key for Vonage API users (previously Nexmo). The stolen API can then be used to send and receive SMS, or even calls, from a large selection of clean numbers.
Read more →

Malware Disables Wordfence Security Plugin & Forges Timestamps

2020-12-16 :: Luke
#backdoor  #plugin killer  #wordpress  #PHP  #website malware  Malware Disables Wordfence Security Plugin & Forges Timestamps
A malicious PHP file is used to take down Wordfence plugin before it adjusts its own mtime timestamp.
Read more →

PHP Injector Makes Evil Use of error_log

2020-12-15 :: Luke
#1550208479  #error_log  #injector  #backdoor  #PHP  #website malware  PHP Injector Makes Evil Use of error_log
A PHP backdoor that injects its payload into the default PHP error_log
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.